05-21-2017 10:52 PM - edited 03-12-2019 02:23 AM
HI Guyz
Seeks your valuable update regarding Anyconnect full tunnel configuration issue
All my configuration are perfect users are able to connect and all traffics are routed to ASA 5525 except they are unable to browse internet. assume mostly DNS related configuration issue which am not clear as am able to ping public internet IPs .even tried enabling DNS lookup on outside interface but result was negative
followed below link for configuration
http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-nex...
Solved! Go to Solution.
05-21-2017 11:39 PM
If you are using full-tunneling, then you need this command under your group-policy and make sure that your clients can reach DNS server over the tunnel.
disconnect/connect after applying the command
**** please remember to rate useful posts
05-21-2017 10:59 PM
Under your group policy configuration, what is your split-dns configuration and split-tunnel-all-dns.
Try to apply these and test.
split-dns none
split-tunnel-all-dns enable
05-21-2017 11:25 PM
HI Mohammed
Its not working .But seems if we modify command it can resolve my issue (If theory is correct). Pls help me even am trying from my side
Note: Its Full tunneling not split tunneling.User gateway is my ASA
Thanks
05-21-2017 11:39 PM
If you are using full-tunneling, then you need this command under your group-policy and make sure that your clients can reach DNS server over the tunnel.
disconnect/connect after applying the command
**** please remember to rate useful posts
05-21-2017 11:48 PM
Thanks Mohammed
Its working
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide